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FIELD OF THE INVENTION 

The present invention relates to a system and a method for 
information protection by navigation and concealment and in particular, for 
such a system atid method in which a user selects a map for scrambling 
10 and/or encrypting data, the map determining how the scrambled and/or 
enctypted data is to be read, such that witliout tlie complete map, the data is 
unreadable 

BACKGROUND OF THE INVENTION 

15 The Internet, and other types of computer networks such as local area 

networks (LAN) and wide area networks (WAN), have increased the 
efficiency of data fransmission, as well as accessibility to data. 
Unfortunately, such increased accessibility has also increased the security 
risks inherent in the transport of data across a network, as well as for the 

20 storage of data on a storage device. Unauthorized computer users can also 
access such data, with the potential for theft and misuse thereof For 
example, if an unauthorized user obtains credit card information, such as a 
credit card number, the stolen information could be used to illegally obtain 
goods and/or services through the Internet. 
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In order to combat such potential misuse of data, various encryption 
methods have been proposed, such as RSA and PGP, for example. All of 
these encryption methods rely upon a mathematical formula of some type. 
The data is encrypted with at least one key, according to the formula. The 

5 data can then only be read by a user who has the correct key. The drawback 
of such encryption methods is that they require the use of a mathematical 
fonnula, and hence can only be very difficult to break, As computers have 
become more powerful, cenain of these encryption methods which were 
previously thought to be practically unbreakable, because of the sheer 

10 amount of computations which would be required, have in fact been broken. 
Therefore, data which is protected by such encryption methods is potentially 
vulnerable to attack, even by unauthorized users who do not possess the key. 

A more robust encryption method would not rely upon a mathematical 
formula, in order to avoid this type of vulnerability to attack. Instead, the 

15 encryption method would rely upon a user-defined map. Rather than 
encrypting the data itself, the meUiod would use the map to deconstruct and 
store the data, such that the data could not be assembled without the map. 
Such a method would have the advantage that tlie data itself could be stored 
openly, since the data would be unreadable without the map. Unfortunately, 

20 such a method is not currently available. 



SUMMARY OF THE INVENTION 

The background art does not teach or suggest a system and a method 
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for scrambling data which does not rely upon a mathematical formula, but 
which instead employs a map for determining a sequential order for reading 
the data, such that the data is not readable without the map. The background 
art also does not teach or suggest such a map which is defined by the user. 

5 The present invention overcomes these deficiencies of the background 

art by providing a system and a method for scrambling and/or encrypting 
data according to a map, whicli is preferably user-defined, such that the 
sequential order in which the data must be read (for scrambled data) or key 
(for encrypted data) is determined by the map. Rather than employing a 

10 mathematical formula to scramble and/or encrypt the data, a plurality of 
units of data are either scrambled or encrypted according to the map. For 
example, information at each location of the map is preferably used to 
detennine the order of a plurality of units of data, such that the existing order 
is rearranged according to information at each location of the map. 

1 5 Alternatively or additionally, the units of data can optionally be encrypted 
according to the map, for example by adding a numeric value derived from 
each location of the map to the value of the unit of data. Such encryption is 
more preferably performed either "bit by bit" for binary data, such that the 
value for each bit is determined by ttie location of the map; or bit in bit, in 

20 which the order may also optionally be rearranged. 

According to preferred embodiments of the present invention, the data 
is separated into a plurality of fragments, A map is then selected for 
determining the order of the fragments, such that without the map, the 
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fragments cannot be assembled in the correct order. The process of 
arranging the fragments such that they cannot be correctly read without the 
map is also referred to herein as "scrambling". Optionally and more 
preferably, die units of data are also scrambled between fragments, such that 
5 the order of the units of data is rearranged both within each fragment and 
also between the fragments. 

Optionally and more preferably, the user selects and/or otherwise 
determines this map for scrambling and/or encrypting the fragments. For 
example, the user could "draw" such a map by moving the mouse or other 
1 0 pointing device, and/or by operating any other type of input device, thereby 
forming an effectively randomly created map. Alternatively or additionally, 
the user is provided with an initial image, which is preferably a fractal. The 
user then preferably selects a plurality of pointe from the fractal. Each point 
can initiate a practically infinite number of navigation paths. Since the 
1 5 points are selected by the user, each individual user would create a different 
and unique map for determining the order of the fragments. 

According to preferred embodiments of the present invention, the 
fr agments of data are scrambled both internally and externally. That is, for 
internal scrambling, the data within each fragment is scrambled according to 
20 an order determined by the map. For example, if the file was originally a 
binary file, such that the data is binary data, the order of "1" and "0*' would 
be altered by shifWng each place of the data according to the map. Most 
preferably, both whether each place of data is shifted, and the new location 
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for placing shifted data, is dcteniiiiied separately for each data place 
according to the map. Fragments may even optionally be arranged in a 
three-dimensional array, and the data in each place could then be shifted 
between fragments, thereby increasing the complexity of the process for 
5 scrambling tiie data. Another option is to combine a plurality of files into a 
single file before creating the fragments, thereby also increasing the 
complexity of the process for scrambhng tlie data. 

Each fragment is preferably labeled with the data from the point of the 
fractal, which is preferably converted to a single number. The map dictates 

10 the order in which the fragments are reassembled, such that the map is 
therefore required in order to reassemble the data in the correct sequence, 
without which the data is not readable. The ne>rt point on the map may 
optionally be stored with each fragment, or alternatively may be stored 
separately, in order to increase the difficulty of reassembling the fragments. 

1 5 Thus, tl\e present invention protects the data by only allowing a user who has 
the correct map to read the data. 

For greater security when performing the method of the present 
invention widi a computational device, at least the ports of the computational 
device are preferably closed to prevent unauthorized access during the 

20 process of scrambling. More preferably, only those features of the 

computational device which are required for the performance of the present 
invention remain operational, while all other software processes and/or 
hardware devices are not permitted to function. Thus, a "Trojan horse" or 
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other unauthorized software process is not able to detect the information for 
unscrambling the data. 

According to the present invention, there is provided a method for 
scrambling data according to a map, the data being composed of a plurality 
5 of units of data in a particular sequence, the method comprising: selecting a 
plurality of points in a particular order to form the map; and scrambling the 
sequence of the units of data according to the map to form scrambled units of 
data, such that tlie map is requiied to unscramble the scrambled units of data, 
and such that the scrambled units of data are not readable without the map. 
1 0 According to another embodiment of the present invention^ there is 

provided a system for scrambling data on a user computer according to a 
map, comprising: (a) a software module for determining the map and for 
scrambling the data, the software module being operated by the user 
computer; (b) a server for receiving the scrambled data from the user 
1 5 computer; and (c) a network connected to the server and the user computer 
for transmitting the data. 

Hereinafter, die term "network" refers to a coimection between any 
two or more computational devices which permits the transmission of data. 
Hereinafter, the term "computational device" includes, but is not 
20 limited to, any type of computer, as well as any type of device which is 

capable of performing a computationj including but not limited to, a cellular 
telephone and a PDA (personal data assistant). 

For the present invention, a software appHcation could be written in 
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substantially any suitable programming language, which could easily be 
selected by one of ordinary skill in the art. The programming language 
chosen should be compatible with rfie computational device wifli which the 
software application is executed. . 
5 In addition, the present invention could be implemented as software, 

firmware or hardwaie, or as a combination diereof. For any of these 
implementations, the functional steps or operations performed by the method 
could be described as a plurality of instructions performed by a data 
processor. 

1 0 Utdess otherwise indicated, the term "scrambling" includes bo* 

"encjypting" data and rearranging the sequential order of data according to 
the method of the present invention. 

BRIEF DESCRIPTION OF THE DRAWINGS 
1 5 The invention is herein described, by way of example only* with 

reference to the accompanying drawings, wherein; 

FIG 1. is a schematic block diagram of an exemplary system 
according to fte present invention; 

FIG, 2 is a flowchart of an illustrative method for scrambling the data 
20 accordmg to the present invention; 

FIG. 3 is a flowchart of an exemplary method for sequential key 
exchange according to the present invention; 

FIG 4 is a second exemplary system according to the present 
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invention for exchanging keys indirectly between two parties. 

DESCRIPTION OF THE PREFERRED EMBODIMENTS 

The present invention is of a system and a method for scrambling 

5 and/or encrypting data according to a map, which is preferably user-defined, 
such that the sequential order in which ihe data must be read (for scrambled 
data) or key (for encrypted data) is deteraiined by the map. Rather than 
employing a mathematical formula to scramble and/or encrypt the data, a 
plurality of units of data are either scrambled or encrypted according to the 

10 map. For example, information at each location of the map is preferably 
used to determine the order of a plurality of units of data, such that the 
existing order is rearranged according to information at each location of the 
map. Alternatively or additionally, the units of data can optionally be 
encrypted according to the map, for example by adding a numeric value 

1 5 derived from each location of the map to the value of the unit of data. Such 
encryption is more preferably performed either "bit by bit'* for binary data, 
such that the value for each bit is determined by the location of the map; or 
bit in bit, in which the order may also optionally be rearranged. 

According to preferred embodiments of the present invention, die data 

20 is separated into a plurality of fragments. A map is then selected for 
determining the order of the fragments, such that without ttie map, the 
fragments cannot be assembled in the correct order. The process of 
arranging the fragments such that they cannot be correctly read without the 
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map is also referred to herein aii ^'scrambling''. Optionally and more 
preferably, the units df data are also scrambled between fragments, such that 
the order of the units of data is rearranged both within each fragment and 
also between the fragments. 
5 Optionally and more preferably, the user selects and/or otherwise determines 
this map for scrambling and/or enciypting the fragments. For example, the 
user could "draw" such a map by moving the mouse or other pointing 
device, and/or by operating any other type of input device, thereby forming 
an effectively randomly created map. Alternatively or additionally, the user 
1 0 is provided with an initial image, which is preferably a fractal. The user then 
preferably selects a plurality of points from the fractal. Each point can 
initiate a practically infinite number of navigation paths. Since the points are 
selected by the user, each individual user would create a different and unique 
map for detennimng the order of the fragments. 
1 5 According to preferred embodiments of the present invention, the 

fragments of data are scrambled and/or encrypted both internally and 
externally. That is, for internal scrambling, the data within each fragment is 
scrambled according to an order determined by the map. For example, if the 
file was originally a binary file, such that the data is binary data, the order of 
20 "T' and *'0'' would be altered by shifiing each place of the data according to 
the map. The value of the coordinates at each point of the map, and/or other 
information about that point of the map, would optionally and more 
preferably used to deteiminc the location of each unit of data, such as "1" or 
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"0". The nuinber(s} derived from each point of the map could optionally be 
fed into a hash function for detennining the location of the unit of data, for 
example. 

Most preferably, both whether each place of data is shifted, and the 
5 new location for placing shifted data, is determined separately for each data 
place according to the map. Fragments may even optionally be arranged in a 
three-dimensional array, and the data in each place could then be shifted 
between fragments, thereby increasing the complexity of the process for 
scrambling the data. Another option is to combine a plurality of files into a 
1 0 single file before creating the fragments, thereby also increasing the 
complexity of the process for scrambling flie data. 

Each fragment is preferably labeled with the data from the point of the 
fractal, which is preferably converted to a single ntmiber. The map dictates 
die order in which the fragments are reassembled, such that the map is 
1 5 therefore required in order to reassemble the data in the correct sequence, 
without which the data is not readable. The next point on the map may 
optionally be stored with each fragment, or alternatively may be stored 
separately, in order to increase the difficulty of reassembling the fragments. 
Thus, the present invention protects the data by only allowing a user who has 
20 the correct map to read the data. 

Another aspect of the process is to hide the information which is 
stored in each fragment. The fragments may be "hidden'* by being labeled 
with names which do not show the relation between fragments, and by also 
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Storing fragments from a plurality of users in a common pool on a storage 

medium. Therefore, m iwiaathorized user would not be able to teassembte 
the fragments without the map, simply by "guessing" as to which fragments 
belong to the correct file. Other aspects of concealing the data may 

5 optionally include, but are not limited to, randomly varying the fragment size 
in order to prevent an unauthorized user from detecting which fragments 
belong to a particular file; saving at least one fragment at a location other 
than the server, widiout which the reassembled fragments are not readable; 
and varying the expiration date for each fragment, after the user has set a 

1 0 minimum expiration date, up until which the data must remain readable. 

According to another preferred embodiment of the present invention, 
once the units of data in each fragment have been encrypted and/or 
scrambled, each fragment or other group of units of data is preferably 
concealed by stegnography in an image. More preferably, each group of 

15 umts of data is concealed in a separate image. The images may then 
optionally be "hidden" on a server, for example by storing die images 
separately, such that even if an unauthorized user is able to access an image, 
the data contained within that image is still hidden. 

Additionally or alternatively, preferably each separate image also 

20 contains information for locating another group of data units in another 

image, such that the groups arc concealed in a plurality of sequential images. 
These sequential images may be considered to form an "infinity movie", 
particularly if fractals are used for the images according to the most 
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preferred embodiment, since the series of images hides the groups of units of 
data in an infinite set of data, and since both the order and the location of the 
hidden data is important. 

Furthermore, if the data is hidden within at least one image, then the 
5 data can optionally be efficiently scrambled within the image itself, by 
perfonning at least one visual alteration to the image according to a visual 
effect. For example, one such visual effect is to distort the appearance of an 
image by unevenly skewing the data along the axes of the image, as for the 
"magnetic" effect provided through the Adobe Photoshop™ product, which 
1 0 alters the appearance of a portion of fee image. Another example of a visual 
effect is skewing the image. This product may even optionally be used 
within the present invention in order to create the desired visual effect, as the 
product also accepts "plug-in" software modules for creating new visual 
efifects and/or manipulating new tile formats. Since the image contains 
1 5 hidden data according to the method of the present invention, distorting the 
image also further conceals the data. 

Alternatively or additionally, the visual effect may optionally be 
perfoi-med on the binary file itself, such that each '*r* or **0" is altered as a 
"pixer\ and such that the binary file is viewed as a two-dimensional image 
20 for determining the alteration(s) caused by the visual effect. Therefore, 

optionally and more preferably, a particular "plug-in" software module may 
be created such that the encrypted and/or scrambled binary file can only be 
decrypted and/or reassembled with the correct software module for reversing 
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the visual effect. Thus, even if an unauthorized user had a copy of the map 
for decrypting and/or unscrambling the binary data, without tfie correct 
reversal of the visual effect, the data would remain inaccessible. 

The third aspect of the process is to optionally and preferably encrypt 
5 cither the entire file, and/or the fragments of the file, according to a known 
encryption method such as DES, PGP> RSA and so forth. More preferably, 
the key is determined from the fractal, such that the data cannot be decrypted 
without the map which has been created from the fractal by the user. 
Optionally, a plurality of keys are created, such that each fragment is 
10 encrypted according to a different key. Alternatively, a single key could 
optionally be broken into a plurality of smaller keys. The first key could 
then optionally and preferably be used to encrypt the second key, and so 
forth, such that the next key in the sequence is used to encrypt the prc^ous 
key. 

1 5 According to other optional but preferred embodiments of the present 

invention, a particular sequence in time can also be used to further increase 
die security of data transmission. For example, if two users wish to 
communicate by exchanging data, such as voice data or messaging data, a 
map obtained from a fractal could also be used to encrypt the data. In this 

20 example, the map would be used to determine the sequence in which the 
transmitted data should be assembled in order for the data to be readable. In 
order to further improve the security of this arrangement, the users could also 
agree to determine the sequence of points within the map according to time, 
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such that after a predetermined period of time has elapsed, the order of the 
data would be determined according to a new point on the map. Thus, even 
if an unauthorized user is able to decrypt the data according to a particular 
point, the continuous switching between points would prevent such a user 
5 from understanding any further data. 

According to an optional but preferred implementation of transmitting 
data according to a sequence in time, the previously described plurality of 
keys could also be sequentially transmitted. In this embodiment, a first key 
(or a first portion of the key, if a single Icey has been broken into fragments) 
10 would need to be exchanged directly between the parties, even manually if 
desired. Next, the first key would be used to encrypt the second key, which 
would then be transnaitted from the first party to the second party. The 
second party could then decrypt the second key by using the first key, and 
could optionally use the second key to encrypt further communication 
1 5 between the parties. Alternatively or additionally, the second key could then 
optionally be used to retrieve another fragment of information and to decrypt 
that fragment. 

For greater security when performing the mediod of the present 
invention with a computational device, at least the ports of the computational 
20 device are preferably closed to prevent unauthorized access during the 
process of scrambling. More preferably, only those features of the 
computational device which are required for the performance of the present 
invention remain operational, while all other software processes and/or 
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hardware devices are not permitted to function. Thus, a "Trojan horse" or 
Other unauthorized software process is not able to detect the information for 
unscrambling the data. 

The principles and operation of the present invention may be better 
5 understood with reference to the drawings and the accompanying 
description. 

Referring now to the drawings, Figure 1 is a schematic block diagram 
of a system according lo the present invention for concealing data on a 
storage device, such that tlic data can only be retrieved and reassembled in 
10 the correct order if the process of assembly is performed according to a 
sequence detennined by a map. 

A System 10 features a server 12, with an associated storage medium 
14 for storing data. Storage medium 14 could be a magnetic disk or "hard 
disk", for example. Server 12 is a computational device which is comiected 
15 to a network 16, such as the Internet for example. Server 12 receives data 
for storage on storage medium 14 through network 16. This data is 
fragmented according to the method of the present invention, explained in 
greater detail below witli regard to Figure 2. 

Preferably, in order to fragment tlie data, server 12 operates a 
20 scrambling software module 18, Alternatively or additionally, scrambling 
software module 18 may optionally be operated by a computational device 
other than server 12, such as user computational device 17, such that server 
12 only receives the data in scrambled format. In any case, scrambling 
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software module 18 enables tlie user to create a map, preferably from a 
source of random numbers such as a fractal for example. The data, which is 
preferably in the form of a file or a plurality of files assembled into a single 
file, is then divided into fragments. Once the map has been created, the 

5 fragments arc scrambled, preferably by altering at least the order of the units 
of data within each fragment, but more preferably by also altering the order 
of the units of data between fragments. Additionally or alternatively, the 
units of data can also be encrypted, for example by determiiting a value for 
each unit of data according to a numeric value which is derived from each 

10 location on the map. The encrypted value is determined witfiout a 
mathematical formttla, as the enciyption is performed according to the map. 
The manner in which the fragments are unscrambled is determined according 
to the map. Thus, unless the map is used to assemble the data, the data is 
unreadable. 

15 For example, the fragments of data from multiple users could 

optionally be stored in a single collection on storage medimn 14. Unless the 
map is used to both understand which fragments are relevant to a particular 
file, as well as how to assemble these fragments, then the stored, fragmented 
data would be useless. As an additional option, the fragments could be 

20 encrypted, before or after tlie data is fragmented and/or scrambled, according 
to a key. The key is optionally determined from the practically infinite 
source of random numbers^ wliich is the fractal. Therefore, a user would 
need to have both die map and to retrieve each portion of data in the correct 
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order in order to locate and assemble the fragments. 

According to another preferred embodiment of the present invention, 
once the units of data in each fragment have been encrypted and/or 
scrambled, each fragment or other group of units of data is preferably 

5 concealed by stegnography in an image. More preferably, each group of 
units of data is concealed in a separate image. The images may then 
optionally be "hidden" on storage medium 14 on server 12, for example by 
storing the images separately in different locations or "file drawers", such 
that even if an unauthorized user is able to access an image, the data 

10 contained within that image is still hidden, and the ability to locate all of the 
images is also hidden. 

Additionally or alternatively, preferably each separate image also 
contains information for locating anotlier group of data units in another 
image, such that the groups are concealed in a plurality of sequential images, 

15 These sequential images may be considered to form an "infinity movie", 
particulaily if fractals are used for the images according to the most 
preferred embodiment, since the series of images hides the groups of units of 
data in aii infinite set of data, and since both the order and the location of the 
hidden data is important. Such an infinity movie is useful for both storing 

20 and transmitting data. 

In addition, optionally and preferably smfer 12 has a time limit for 
the period of time for which the map is valid. For example, the user could 
request that the stored data can only be retrieved for a certain number of 
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days, after which the stored data is destioyed, Altemativdy, server 12 could 
also optionally permit the data to be retrieved once, after which the data 
would also be destroyed. 

For additional security, the user could also optionally remove one 
5 fragment of the data, before it is stored on storage medium 14. The user 
would then need to simply this missing fragment of data during the process 
of assembly for the reassembled data to be readable. Thus, an unauthorized 
user would not only need to obtain the missing fragment of data, such an 
unauthorized user would also need to know the point at which the missing 
10 fragment of data is to be inserted during the process of reassembly, 
according to the map, 

According to yet another implementation of the present invention 
through server 12 of system 10, two users could optionally and preferably 
communicate with a shared map tfirough server 12, For example, during an 
15 IP telephone call» which is a telephone call perfonned through a network 
such as the tatemet, two users could agree that data would be fr^nented 
according to the shared map by scrambling software module 18 of server 12. 
As an additional security measure, the users could also agree to shift to 
different points within the map according to a particular time schedule, such 
20 that an unauthorized user who is attempting to reassemble the data would 
only know tfie previous point on the map, but not the new correct point on 
the map. 

If scrambling software module 18 is operated by user computational 
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device 17, then optionally and more preferably, scrambling software module 
18 also operates continuously at the background of all software processes, 
thereby enabling all of the data which is to be stored on a local storage 
medium of user computational device 17 to optionally be scrambled, most 
5 preferably before being stored on the local storage medium (rather than 
being written first and then scrambled). Furthermore, any data which is 
stored on the local storage medium, whether permanent or temporary, could 
optionally be scrambled, as well as any unwritten space of the storage 
medium. Such a feature gives added security by preventing an unauthorized 
10 user from determining which areas of the computer contain files, and also by 
preventing computer "viruses" and other unauthorized software instructions 
from becoming attached to these files. 

Figure 2 is a flowchart of an exemplary method according to the 
present invention for scrambling and/or enciypting data. Any type of data 
15 may potentially be concealed according to this method^ including but not 
limited to, audio, voice, text, video, graphic image and other types of data. 
The method of the present invention preferably operates with the system of 
Figure 1, 

hi step 1 , tiie user selects a file, whether stored locally or at a remote 
20 site, according to any storage mechanism. In step 2, the local computational 
device being operated by the user is preferably disconnected from any type 
of netwoiic connection, in order to protect the data during the process of 
scrambling and/or encryption. For greater security, more preferably, only 
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those features of the local computational device which are required for ttie 
performance of the present invention remain operational, while all otfier 
software processes and/or hardware devices are not permitted to function. 
Thus, a "Trojan horse'* or other unauthorized sofhvare process is not able to 

5 detect the information for unscrambling the data. 

in step 3a, the entire file is optionally and preferably encrypted 
according to a mathematical formula, for example according to a method 
which is known in the art such as DES, PGP, and so forth, In step 4a, the 
encrypted file is preferably divided into a plurality of fragments. Preferably, 

10 steps 3a and 4a are performed according to the preference of the user, such 
that tlie user selects the enciyption method and the method by which the file 
is divided. 

As an alternative method, in step 3b, the file is divided into a plurality 
of fragments. In step 4b, optionally and preferably each fragment is 

15 encrypted according to a mathematical formula, for example according to a 
metliod which is known in the art such as DES, PGP, RSA and so forth. 
Alternatively, the data is not encrypted at this stage, but instead is encrypted 
at a later stage, as described in greater detail below. 

In step 5, the user selects or creates a map according to which the data 

20 is scrambled. For selecting die map, preferably the user selects points from a 
fractal, which tnore preferably also includes selecting a resolution, the 
coordinates of flie fu-st navigation point for the map, and the color bar code 
for the fractal Alternatively, the colors may optionally be removed from the 
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fractal. Other options include, but are not limited to, selecting a navigation 
time point, which is the magnification of the movement to the next point. In 
other words, the amount of time which is required to move to the next 
navigation point is selected, This amount of time, as well as the rate at 
5 which movement has occurred, is most preferably used for the previously 
described prefcired embodiment in which two or more users agree on a 
shared map, which is then constructed on the fly as die users interact by 
exchanging data for example. Without the knowledge of the amount of time 
which must elapse, as well as the rate at which movement occurs across the 
10 fractal, an unauthorized user cannot correctly select the next navigation point 
on the shared map. 

Jf a plurality of fractals is used for Ae shared map, then navigation 
can also optionally occur between points in different fractals, the order of 
which also forms part of the shared map. For each selected pixel, the 
15 resolution, the color bar code, the coordinates, the location of the pixel 
relative to the fractal itself, and the time point are all preferably collected. 

For creating the map, preferably the user manipulates a mouse or 
other pointing device, and/or operates any odier type of input device, which 
is connected to the user computational device in order to "draw*' the map. 
20 Tn step 6, the data units within the fragments arc scrambled and/or 

encrypted according to the map. For example, the units of data are 
scrambled by altering the order of the data location for at least certain units 
of data. The units of data are encrypted by altering a value for at least 
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certain units of data according to numeric values obtained from the map. 
One example of a "unit" of data for binary data is "1" or "0". For 
scrambling, tihe order of die units is therefore rearranged at least within the 
fragment, and more preferably between fragments, in order to scramble the 
5 data. The order for scrambling is detennined by the map which was created 
as previously described, such that without the map, the data cannot be 
reassembled correctly. 

In step 7, each fragment is optionally labeled with a file name. The 
file name can optionally be used to directly name the fragment for storage 
10 and/or transport, or alternatively, can be stored separately with the map, and 
a different name used for the fragment. This file name is preferably created 
from mforraation which is hidden in a second map, which may also 
optionally be a fractal and/or created by the user as previously described. 
For this option, preferably the file name is taken from a string of numbers 
1 5 which describes each selected point of the fractal and/or of the map which is 
created by the user. For example, for the fractal, such a selected point or 
pixel may be described according to one or more of die resolution, the color 
bar code, the coordinates, the location of the pixel relative to the fractal 
itself, and the time point, as previously described. According to a preferred 
20 embodiment of die present invention, the label for each successive fragment 
in a particular sequence is stored in the map v^iiich is used to determine the 
label for that fragment. Alternatively or additionally, preferably Uie data for 
the entire fragment is "hidden" in the map or a portion thereof, particularly if 
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the map is a fractal, in a process known in tlie art as stegnography. Such a 
process may optionally be performed with software such as the Invisible 
Secrets™ software of Secrctec Inc. 

More preferably, the size of the fragments is varied, such that a 
5 plurality of fragments of different sizes is created, in order to further increase 
the difficulty of assembling the fragments wiAout the map. Also more 
preferably, the user determines the level of security and/or other rules for 
creating the fragments and scrambling the data. 

h\ step 8, if the fi^agments were not previously encrypted according to 
10 a known encryption method, optionally and preferably these fragments arc 
encrypted in this step. Alternatively, if the units of data within fragments 
were scrambled at a previous stage, then optionally and more preferably, 
these units of data are now encrypted according to the method of the present 
invention. Also alternatively, if tlie units of data within fragments were 
15 encrypted at a previous stage according to the method of the present 
invention, then optionally and more preferably, these units of data are now 
scrambled according to the method of the present invention. 

In step 9, the fragment is stored on the storage medium and/or 
transported to the next destination. Steps 7-9 are then repeated for the next 
20 fragment and the next navigation point on the map. 

In step 10, if the fragments arc transmitted to a central server, then 
preferably Ac server stores these fragments without any indication as to the 
correct order. More preferably, the server stores the fragments from a 
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plurality of users without any type of siructure or file hierarchy, such Uial 
each fragment is located on the storage device of tlie server only according to 
the name of that fragment, as an addition^ security measure. The server 
may also optionally at this stage hide the fragments in a fractal or other map, 

5 according to stegnography. Optionally, if the fragments are stored at a 
central server, fragments from a pliflrahty of users are stored in a mixed 
directory, in order to further conceal the information. If the data is stored in 
a binary format and/or is encrypted, wliich is preferred, then even if one of 
the fragments is located conectly by an unauthorized user^ the data is 

10 meaningless. 

The map is preferably stored separately in step 1 L Alternatively, the 
user may also choose to store the map at the server, protected by a password 
or other type of protection. 

In order to be able to reassemble the fragments, the map is used to 

15 detennine the sequence. In addition, if the entire file was encrypted, then the 
previously collected information from the pixels is optionally and preferably 
used as the key for the encryption, optionally by combining the collected 
information linearly from the navigation points. If the file was first 
fragmented before encryption, then the collected pixel information from each 

20 navigation point optionally forms the key for encrypting that fragment. 
Alternatively, only a portion of the collected infonnation, such as the color 
bar code, may be used as tiie key. Therefore, this collected information is 
required for decrypting the file. 
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As another optional embodiment, at least one fragment is stored 
separately by the user, rather than on the server This fragment must also be 
added in the correct order. Most preferably, the separately stored fragment is 
either the first fragment or the last fragment. Also most preferably, the first 
5 fragment and the last fragment are separately stored. 

In addition, the fragments which are stored on the server preferably 
cannot be destroyed by the user. Rather, the u$er selects a time of 
destruction, after which the server automatically destroys the file. More 
preferably, the user selects the minimum time of destruction, after which the 
10 server assigns separate destruction times randotnly for each fragment after 
this minimum time has elapsed, in order to prevent unauthorized users from 
determining which fragments belong to a single file according to the time of 
destruction. 

As yet another optional embodiment, at any point in the above 
15 method, the "shape" of the fragments may be altered (or new fragments 
created with the new "shape"). By "shape*', it is meant that the boundaries 
for dividing a data file, and/or redividing a plurality of fragments, is 
determined according to an irregular edge. For example, if a flat data file is 
viewed as a grid on an x-axis and a y-axis, then the boundary for dividing the 
20 file could optionally be determined by shifting both the values for the "x" 
positions and the "y" positions simultaneously, thereby producing an 
irregular edge. If the file is divided into fragments, and the fragments are 
ananged as a (logical ratlier dian physical) three-dimensional array with x-, 
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y- and z-axes, then the boundary for dividing tlie fik could optionally be 
determined by shifting values for any two or more of the "x" positions, V' 
positions and "z" positions simultaneously. Thus, the file would be divided 
into pieces of different, irregular sizes, for greater security. 

5 Figure 3 is a flowchart of another exemplaiy method according to the 

present invention, which uses the server as a centra) repositoiy for 
infonnation which is then sequentially retrieved and decrypted by two 
parties. These two parties may, for example, be two separate user 
computational devices which are being operated by two separate users, 

iO In step 1, the first user prepares a plurality of fragments, which as 

previously described are at least scrambled and then loaded to the server. In 
addition, the first user prepares a plurality of keys and/or Augments of a 
single key in step 2, also as previously described, such that each successive 
key more preferably contains both the information which is required to 

15 decrypt the next key, and also infonnation about the location of the next 
fragment on the server 

In step 3, the first user sends tlie first key to the second user, 
optionally in advance of communication between tlie two users throu^ their 
respective user computational devices. Alternatively, if the key is not being 

20 used for communication, then the first user sends the first key (or first key 
firagment) to the second user when the second user is to be permitted to 
retrieve the secured data on the server. It should be noted that designations 
such as "furst" and "second" do not necessarily refer to the order in which the 
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keys and/or the data which they secure must be assembled, but only to the 
order of retrieval. 

In Step 4, optionally and more preferably, the first user also sends 
certain infonnation which is required to use the first key. For example, if 
5 each key is a fractal image, which in fact contains an infinite number of 
different images or "fi^ctal worlds", both the coordinates of the hidden data 
and the particular "fractal world" must be known to receive the key data. 
The first user could optionally send only one of the coordinates or the 
''fractal world" to ihe second user with the key, and could then send the 

10 missing information by a separate communication channel (such as through 
voice communication over a telephone, for example). 

According to the prefenred embodiment of this method, in step 5, the 
second user uses the information from the key to both locate data on the 
sei-ver and to unscramble it. Most preferably, once the second user has 

15 successfully retrieved the stored data from the server, Aat stored data is 
automatically destroyed, so that only the second user is able to retrieve that 
data. Also most preferably, die stored data includes the second key (or key 
fragment), although alternatively, tiie first user sends the second key to the 
second user. 

20 In step 6, the second user uses the first key to decrypt the second key. 

Tlie second key is then preferably used to retrieve data as described with 
regard to the first key. Alternatively, the second key may then optionally be 
used alone in order to encrypt the communication between the two user 
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computational devices, such fl)at rapidly switching between successive keys 
would enable the two users to communicate even in the case of a "sniffer" or 
a "man-in-the-middle" attack. By the time that an unauthorized party is able 
to detemine the identity of the new key, the key would have been switched 
5 again. 

In step 7, this process is preferably repeated^ until the second user has 
received and unscrambled the data and/or the process of communication is 
finished. 

According to an alternative embodiment of the present invention, 
1 0 rather thai^ sending a key, only the necessary information for locating the key 
within an image is sent, such as the coordinates of the point within a fractal 
image and a definition of the fractal **world" or navigation point for locating 
these coordinates, If this necessary information is split into two groups, such 
that one group contains the coordinates while another contains the navigation 
15 point, for example, then the information could even optionally be sent by 
two separate insecure communication chaiuicls. 

Figure 4 shows yet another preferred embodiment of the present 
invention, which is an exemplary system for exchanging keys without direct 
communication between two parties. As shown, a system 20 features a 
20 trusted server 22, which is in communication with a plurality of end user 
computational devices 24. A first end user computational device 24 is to be 
used to communicate with a second end user computational device 24. First 
end user computational device 24 has a first key which is stored on trusted 
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server 22, while second end user computational device 24 has a second key 
which is also stored on trusted server 22, Both the first and second keys may 
optionally be determined and/or assigned by trusted server 22. 

In order to initiate communication, first end user computational 

5 device 24 sends a request to trusted server 22, to encrypt the first key by 
using the second key, and tfien to send the encrypted first key to second end 
user computational device 24. Second end user computational device 24 can 
now decrypt the first key> and can use the first key to encrypt information for 
transmitting to first end user computational device 24. However, preferably 

10 these keys are actually used to scramble data as previously described, and/or 
to initiate a sequential exchange of keys also as previously described. 
Therefore, both fast and second end user computational devices 24 are able 
to exchange scrambled data without first directly exchanging their private 
keys. 

15 It should be noted Aat the present invention is also operative with a 

computational device, such as a cellular telephone, which tacks a mouse or 
other pointing device for "drawing" a map. For these devices^ a map may 
optionally be selected through the keypad or other input device, and then 
more preferably is itself altered by being divided into different fragments, 

20 which are then reassembled in order to form the fmal map. 

The present invention is of a system and method which are useful for 
encrypting and/or scrambling data according to a map, thereby providing 
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strong protection for the data, since the map cannot be derived from outside 
infonnation and/or a brute force attack. The protected data is optionaUy 
stored on a storage device, and/or transmitted to another user and/or a central 
server. As another option, the protected data may be used as a key to be 
5 exchanged between two or more parties, for example for communication 
between the parties. Furthermore, the present invention is useful for 
producing a key which can replace the PKI (public key infrastructure) 
system, smce as previously described, the method of the present invention 
enables a key to be created which is hidden in an image^ such as a fractal, 
10 and which therefore is not susceptible to a brute force attack. However, the 
present invention is also optionally used in conjunction with any other type 
of encryption method, even those methods which use a mathematical 
formula for encryption, and can also optionally be used to secure any type of 
non-secure communication channel The present invention is also 
15 pailicularly useful as it requires a relatively small amount of computational 
power to be operative, since it does not require multiple reading and writing 
steps for encrypting data. Instead, the data are optionally encrypted after 
reading (for example, to a volatile memory such as RAM (random access 
memory)) but before writing to a permanent storage. 

20 

While the invention has been described with respect to a limited 
number of embodiments, it will be appreciated that many variations, 
modifications and other applications of the invention may be made. 



